Table of Contents
- Executive Summary
- Solution Overview
- Common Security and Operational Challenges
- Key Benefits
- Additional Capabilities and Licensing
- Conclusion
- About GigaOm
- Copyright
1. Executive Summary
This GigaOm Solution Profile commissioned by Cogility.
Cogility TacitRed provides security analysts with continuous external threat intelligence, offering evidence-based, prioritized insights into cyber exposures and imminent threats. By applying event stream processing and advanced behavioral analysis to continuous volumes of commercial and proprietary internet, attacker traffic, and threat intelligence data, TacitRed generates detailed, on-demand findings for over 18 million U.S. entities. This solution includes cyber threat visualization, scoring, categorization, attack chain stage identification, and comprehensive attack vector enumeration for threats such as targeted technology, compromised credentials, session hijacks, malware/ransomware, compromised systems, and persistent threats.
Important Features and Capabilities
- On-demand first-party and third-party external threat intelligence and monitoring SaaS with API-based feed option
- Real-time, streaming analytics for proactive threat detection
- Continuous data integration from multiple commercial and proprietary data sources
- Curated findings from analyzing global threat signals, traffic activity, and threat intelligence between threat actors and entities
- Comprehensive threat contextualization that can be used to expedite incident response
- Interactive Attack Surface Explorer visualization (mapping knowledge graph) and Attack Surface Dashboard to examine detailed findings
Exclusions and Limitations
- Not a threat intelligence aggregator: TacitRed does not ingest or rely on a company’s existing threat intelligence sources, nor does it require subscriptions to external threat intelligence feeds.
- Not an internal attack surface management tool: While TacitRed provides detailed insights into external threats like ransomware, compromised credentials, and data exfiltration, it does not collect or analyze data from internal systems, which are typically managed by solutions like MDR (Managed Detection and Response) or internal ASM tools.
Value Proposition
Cogility TacitRed helps organizations optimize resources, mitigate data breach exposure, and improve security posture by providing actionable, evidence-based threat intelligence – delivered as a on-demand SaaS solution. By reducing signal to noise ratio, it enhances threat mitigation decision-making, mean-time-to-respond, security analyst proficiency, and third-party cyber risk management.
Target Audience
- Mid-tier and large enterprises
- Government agencies
- Managed security service providers (MSSPs)
- Cyber-risk analysts and SecOps teams